October 20, 2016

HDFC, ICICI Bank, Axis Bank, SBI & Yes Bank Hit With Malware Attacks; 32 Lakh Cards Compromised

We are very familiar with the usage of ATM’s. After the invention of ATM machine, the major task of drawing the money from our bank account became so easy. Nowadays all the banks are giving the ATM cards to the account holders. It’s very convenient for us to carry ATM-cum-Debit cards with us. You can withdraw from your account with a simple swipe of you debit card at the ATM’s.

One can draw the amount from any Automated Teller Machine (ATM) irrespective of their banks. However, now the ATM’s also facing problems with the Cyber-Attacks.  From past few days we are hearing that a major cyber-attack at the back-end system of a bank has suspected to compromised i.e; about 32 lakh debit cards from HDFC, ICICI Bank, Axis Bank, SBI and Yes Bank have been at risk.


Debit Card Holders Of Any Of These Banks, Change Your ATM PIN

Among the affected cards, 2.6 million are said to be on the Visa and Master-Card platform and 600,000 on the RuPay platform. The worst-hit of the card-issuing banks are State Bank of India, HDFC BankBSE -0.20 %, ICICI BankBSE 4.49 %, YES Bank and Axis Bank.

Here’s the Reason Why ATM Pin has Only 4 Digit’s

What Happened Exactly?

According to the reports, the breach is said to have originated in malware introduced in systems of a Yes Bank ATM, which was maintained and supported by Hitachi Payments Services. When a non-Yes Bank account holder used that ATM, then the malware spread into other ATMs, and subsequently into the ATM Network of SBI, Axis Bank, HDFC and ICICI Bank. However, Yes Bank’s network was automatically infected. This enables fraudsters to steal information which allows them to steal funds.


What Banks Are Saying?

A forensic audit has now been ordered by Payments Council of India on Indian bank servers and systems to detect the origin of frauds that might have hit customer accounts. NPCI Managing Director AP Hota said “We have received complaints from banks about debit cards being used in China which aroused suspicion. Though most of the suspected fraudulent transactions happened in the Visa and MasterCard network, we thought a whole a forensic audit of the entire network will help us find.”

HDFC Bank said that “it had already taken action on the matter a few weeks back. Besides advising those customers who we know have used a non-HDFC Bank ATM in the recent past to change (their) ATM PIN, we are advising our customers to use only HDFC Bank ATMs as we believe security controls at some of the other bank ATMs may not be at par with HDFC Bank ATMs. We take this opportunity to reiterate that it’s always prudent to change ATM PINs from time to time. It prevents misuse.”


Change Your ATM PIN ImmediatleyChange Your ATM PIN Immediatley

SBI Chief Information Officer Mrutyunjay Mahapatra told “Based on the complaints we have received, we are suspecting a compromise on the non-SBI ATM network which could include various white-label ATM service providers. Therefore, as a precautionary measure, we have blocked six lakh debit cards. We have assured our customers that there has not been any breach on the ATM network of SBI.”

However, Visa, MasterCard, ICICI Bank, Axis Bank and YES Bank did not reply to any queries.

What You Should Do If You Are The Debit Card Holder Of the Above Banks?

If you are the debit card holder of SBI, Axis Bank, HDFC and ICICI Bank, then immediately change your ATM password/ PIN Numbers and contact your bank regarding further instructions.

Be aware of the Cyber attacks.

About the author 


Non-fungible tokens (NFTs) are becoming increasingly popular as a way to represent

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}